[ubuntu/xenial-proposed] libotr 4.1.0-7ubuntu1 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Thu Mar 10 14:02:17 UTC 2016
libotr (4.1.0-7ubuntu1) xenial; urgency=medium
* SECURITY UPDATE: memory corruption vulnerability
- debian/patches/0002-CVE-2016-2851.patch: prevent integer overflow in
src/proto.c.
- CVE-2016-2851
Date: Thu, 10 Mar 2016 08:50:56 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/libotr/4.1.0-7ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 10 Mar 2016 08:50:56 -0500
Source: libotr
Binary: libotr5 libotr5-bin libotr5-dev
Architecture: source
Version: 4.1.0-7ubuntu1
Distribution: xenial
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libotr5 - Off-the-Record Messaging library
libotr5-bin - toolkit for Off-the-Record Messaging library
libotr5-dev - Off-the-Record Messaging library development files
Changes:
libotr (4.1.0-7ubuntu1) xenial; urgency=medium
.
* SECURITY UPDATE: memory corruption vulnerability
- debian/patches/0002-CVE-2016-2851.patch: prevent integer overflow in
src/proto.c.
- CVE-2016-2851
Checksums-Sha1:
175ae8e4f1bc0e2cc417938a460c8386a1804037 2231 libotr_4.1.0-7ubuntu1.dsc
61af86d2517eda509e99c3ee7adaac3d38412180 39284 libotr_4.1.0-7ubuntu1.debian.tar.xz
Checksums-Sha256:
ba0c20479a098acb9db67bfea70646dc125d06f2227955b3137ccaca605ce36d 2231 libotr_4.1.0-7ubuntu1.dsc
23ad370c0337ba34a0f194d19609f7059739083d33c3e8e9e666f269e1787de1 39284 libotr_4.1.0-7ubuntu1.debian.tar.xz
Files:
a100c80ea06f79121c27d6ee2ac2ada3 2231 libs optional libotr_4.1.0-7ubuntu1.dsc
a303b7e9c134ffa0dafd70c3ff2c735b 39284 libs optional libotr_4.1.0-7ubuntu1.debian.tar.xz
Original-Maintainer: Debian Privacy Tools Maintainers <pkg-privacy-maintainers at lists.alioth.debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=xkt8
-----END PGP SIGNATURE-----
More information about the Xenial-changes
mailing list